Job Overview: Arm’s new business capabilities bring security challenges that need a thoughtful, adaptable and strong cloud security strategy. We ensure Arm’s success by providing scalable, defendable security services that protect Arm, customer, and partner data, giving an edge in a competitive industry.
Responsibilities:
1. Working with the Enterprise Security, Architecture, Cloud Enablement & Engineering teams, you will plan, implement, and optimise security controls in the cloud (AWS) and drive delivery of CNAPP capability.
2. Utilise comprehensive technical assessments of existing cloud security capabilities and solutions to identify vulnerabilities and risks.
3. Create and deliver actionable recommendations and strategies for securing cloud solutions.
4. Implement security measures for cloud-native applications, including container security and serverless architectures.
5. Creating a sustainable framework and operational processes for continuous management of Cloud Security in Arm, within Security Technology Operations.
6. Integrating security controls seamlessly into technology and operational workflows.
7. Leveraging Infrastructure as Code (IaC) tools to automate the deployment of security controls, ensuring consistency and efficiency.
8. Enhancing security configurations and policies to minimise risks and ensure compliance with industry standards and regulations and alignment with industry leading security frameworks, including the Cloud Security Alliance (CSA) Cloud Controls Matrix (CCM) and NIST guidelines, to strengthen cloud environments.
9. Providing training and awareness programs for partners and internal teams on cloud security standard methodologies.
10. Implementing standards and policies to safeguard workloads and the cloud infrastructure.
Required Skills and Experience:
1. Experience with cloud technologies focused on security, both strategically and operationally, and implementing a strategic Cloud Security support model.
2. In-depth knowledge of cross-cloud security principles and standard processes with experience in implementation and automation.
3. Experience with security tools and technologies such as firewalls, CNAPP, intrusion detection/prevention systems, and SIEM.
4. Ability to communicate and report cloud security controls and a solid understanding of IAM and RBAC, with emphasis on applying the Least Privilege principle.
5. Experience in embedding and training cloud security practices within teams, particularly within Security Technology Operations (STO).
“Nice To Have” Skills and Experience:
1. Bachelor’s degree or higher in relevant subject (e.g., Cyber Security, Information Security), or equivalent evidenced experience.
2. Demonstrated ability in cloud security, with a solid grasp of cloud platforms such as AWS, Azure, and Google Cloud.
3. Relevant security certifications such as CISSP & CISM with additional certifications that underscore expertise in cloud security design and deployment: CCSP, AWS Certified Security, Google Professional Cloud Security Engineer & Azure Security Engineer Associate.
In Return: We offer exciting and interesting work in a global and diverse team. Arm's growth trajectory will ensure career progression and the opportunity to have a significant impact on our success.
Accommodations at Arm: At Arm, we want our people to Do Great Things. If you need support or an accommodation to Be Your Brilliant Self during the recruitment process, please email accommodations@arm.com.
Hybrid Working at Arm: Arm’s approach to hybrid working is designed to create a working environment that supports both high performance and personal wellbeing.
Equal Opportunities at Arm: Arm is an equal opportunity employer, committed to providing an environment of mutual respect where equal opportunities are available to all applicants and colleagues.
#J-18808-Ljbffr